Security Engineer – AI Application & Infrastructure

Unleash innovation in cybersecurity — shape the future of AI security at a global banking leader! Krakow-based opportunity with hybrid work model (up to 3 days remote per week). As a Security Engineer – AI Application & Infrastructure, you will be working for our client, a leading international bank, in the forefront of cybersecurity technology. You will help design and implement advanced security solutions for AI systems, driving the development of secure AI deployment practices that safeguard critical banking and AI infrastructures. Join a team committed to innovative security engineering that shapes the future of AI in finance and beyond. Your main responsibilities: • Conduct secure code reviews and provide developer-friendly security findings to engineering teams across cybersecurity and banking units. • Act as a security consultant, identifying insecure AI/ML patterns, deprecated protocols, and compliance gaps, recommending secure migration paths. • Build proof-of-concept (POC) and proof-of-value (POV) implementations to evaluate new security solutions for AI and application security. • Assess and report on security findings using rigorous analytical methodologies, including statistical modeling and risk evaluations. • Evaluate large language models (LLMs) for security applications, measuring their efficacy in vulnerability detection and automated remediation. • Review AI platform configurations, access controls, and deployment settings to ensure safety and compliance standards are maintained. • Develop clear technical documentation to enable knowledge sharing across engineering teams globally. • Identify risks in AI/ML pipelines, such as prompt injection or data leakage, and define secure-by-default best practices. • Examine third-party AI supply chains for vulnerabilities and model integrity issues. • Contribute to the development of security patterns, policies, and guidance across diverse AI projects. • Mentor colleagues, foster a culture of continuous learning, and promote best security practices in AI application development. You're ideal for this role if you have: • 6+ years of experience in cybersecurity, application security engineering, or related fields. • Strong expertise in secure code review, vulnerability analysis, and AI/ML security risks (OWASP Top 10, and AI/ML-specific risks). • Hands-on experience with security tooling (e.g., SAST, container security, secrets scanning, vulnerability scanning). • Knowledge of API security, authentication protocols (OAuth 2.0, JWT), and secure CI/CD pipelines. • Proficiency in Python scripting and automation for security workflows. • Experience with security standards in regulated financial environments (e.g., NIST, ISO 27001). • Ability to lead security threat modeling sessions and effectively communicate technical security findings. • Fluent English communication skills, with proven ability to work within Agile teams and influence cross-functional stakeholders. It is a strong plus if you have: • Hands-on experience with OWASP LLM Top 10 or adversarial ML techniques. • Knowledge of cloud security on GCP and/or Azure. • Relevant security certifications such as CSSLP, CEH, OSCP. • Experience with Software Composition Analysis (SCA) tools. • Background working in financial services or heavily regulated sectors. Eligibility to work on this role: Only candidates with an existing legal right to work in the European Union will be considered for this role. #MAKEYourCareerBETTER Interested? Apply now and include your CV (preferably in English) along with a statement confirming your consent to the processing and storage of your personal data.